# 开局配置

收集常用开局配置模板

## NTP

import Tabs from '@theme/Tabs';
import TabItem from '@theme/TabItem';

<Tabs
groupId='device_company'
defaultValue="huawei"
values={[
    //{ label: 'Huawei', value: 'huawei', },
    { label: 'H3C', value: 'h3c', },
    { label: 'Maipu', value: 'maipu', },
    //{ label: 'Ruijie', value: 'ruijie', },
    { label: 'Cisco', value: 'cisco', },
]
}>
<TabItem value="huawei">

```
这是huawei命令
dis version

```

</TabItem>
<TabItem value="h3c">

```
clock timezone CHINA add 08:00:00
ntp-service authentication enable
ntp-service source-interface vlan200
ntp-service authentication-keyid 1 authentication-mode md5 CBHB
ntp-service reliable authentication-keyid 1
ntp-service unicast-server 10.96.0.1 authentication-keyid 1 priority
ntp-service unicast-server 10.96.0.2 authentication-keyid 1
```

</TabItem>
<TabItem value="maipu">

```
clock timezone CHINA 8
ntp authenticate
ntp authentication-key 1 md5 CBHB
ntp trusted-key 1
ntp source Loopback0 
ntp server 10.7.240.5 key 1
```

</TabItem>
<TabItem value="ruijie">

```
这是Ruijie命令
show version

```

</TabItem>
<TabItem value="cisco">

```
# 服务器配置
NTPServer(config)#ntp master
NTPServer(config)#clock timezone beijing 8
NTPServer(config)#ntp authentication-key 1 md5 cisco 
NTPServer(config)#ntp trusted-key 1
NTPServer(config)#ntp authenticate

# 客户端配置
NTPClient(config)#ntp server 192.168.1.1
NTPClient(config)#ntp authentication-key 1 md5 cisco
NTPClient(config)#ntp trusted-key 1 
NTPClient(config)#ntp authenticate
```

</TabItem>
</Tabs>


## Dot1x

<Tabs
groupId='device_company'
defaultValue="huawei"
values={[
    //{ label: 'Huawei', value: 'huawei', },
    { label: 'H3C', value: 'h3c', },
    { label: 'Maipu', value: 'maipu', },
    //{ label: 'Ruijie', value: 'ruijie', },
    { label: 'Cisco', value: 'cisco', },
]
}>
<TabItem value="huawei">

```
这是huawei命令
dis version
```

</TabItem>
<TabItem value="h3c">

```
全局模式下
dot1x
dot1x authentication-method eap

radius scheme test
 primary authentication 101.102.1.41
 primary accounting 101.102.1.41
 key authentication cipher $c$3$PgwAzCkEBesxpfozqWM8yKBSPsylU30=
 key accounting cipher $c$3$DYX1EEK0q5kokR1z0esehW8H9BcaOQs=
 user-name-format without-domain

domain test
 authentication lan-access radius-scheme test none
 accounting lan-access radius-scheme test none
 authentication default radius-scheme test
 authorization default radius-scheme test
 accounting default radius-scheme test
#
domain system
 domain default enable test


接口模式下
dot1x
```

</TabItem>
<TabItem value="maipu">

```
全局下
aaa new-model
aaa authentication login default line
aaa authentication connection default radius none
aaa authorization network default radius

radius-server host 10.21.0.53 auth-port 1812 acct-port 1813 priority 0 key 0 Enforcer@123
radius-server host 10.21.0.54 auth-port 1812 acct-port 1813 priority 1 key 0 Enforcer@123
ip radius source-interface switchethernet1


dot1x eap-relay enable
no dot1x reauthentication



接口下
dot1x port-control enable
```

</TabItem>
<TabItem value="ruijie">

```
这是Ruijie命令
show version
```

</TabItem>
<TabItem value="cisco">

```
全局模式下：
dot1x system-auth-control

aaa authentication login default line 
aaa authentication dot1x default group radius none 
aaa accounting dot1x default start-stop group radius

radius-server host 101.102.1.41 auth-port 1812 acct-port 1813 retransmit 3
radius-server key 7 141413061F



接口模式下：
dot1x pae authenticator
dot1x port-control auto

可选参数：
 dot1x timeout quiet-period 3
 dot1x timeout tx-period 3600
 authentication host-mode multi-host （IOS Release 12.2(50)SE及以上版本支持）
 authentication event server alive action reinitialize （IOS 12.2(44)SE6及以下版本不支持）
 
```

</TabItem>
</Tabs>
